Patch Tuesday, October 2024 Edition

Credit to Author: BrianKrebs| Date: Tue, 08 Oct 2024 22:21:19 +0000

Microsoft today released security updates to fix at least 117 security holes in Windows computers and other software, including two vulnerabilities that are already seeing active attacks. Also, Adobe plugged 52 security holes across a range of products, and Apple has addressed a bug in its new macOS 15 “Sequoia” update that broke many cybersecurity tools.

Read more

April’s Patch Tuesday Brings Record Number of Fixes

Credit to Author: BrianKrebs| Date: Tue, 09 Apr 2024 20:28:17 +0000

If only Patch Tuesdays came around infrequently — like total solar eclipse rare — instead of just creeping up on us each month like The Man in the Moon. Although to be fair, it would be tough for Microsoft to eclipse the number of vulnerabilities fixed in this month’s patch batch — a record 147 flaws in Windows and related software.

Read more

Patch now! September Microsoft Patch Tuesday includes two actively exploited zero-days

Categories: Business

Categories: Exploits and vulnerabilities

Categories: News

Tags: Microsoft

Tags: Adobe

Tags: Android

Tags: Apple

Tags: Chrome

Tags: SAP

Tags: Exchange

Tags: Visual Studio

Tags: CVE-2023-36761

Tags: CVE-2023-36802

Tags: CVE-2023-29332

Tags: Azure

Microsoft’s September 2023 Patch Tuesday is another important one. It patches two vulnerabilities which are known to be actively exploited.

(Read more…)

The post Patch now! September Microsoft Patch Tuesday includes two actively exploited zero-days appeared first on Malwarebytes Labs.

Read more

Super FabriXss: an RCE vulnerability in Azure Service Fabric Explorer

Categories: Exploits and vulnerabilities

Categories: News

Tags: Azure

Tags: Microsoft

Tags: Super FabriXss

Tags: RCE

Tags: vulnerability

Tags: CVE-2023-23383

Researchers disclosed how they found a remote code execution vulnerability in Azure Service Fabric Explorer.

(Read more…)

The post Super FabriXss: an RCE vulnerability in Azure Service Fabric Explorer appeared first on Malwarebytes Labs.

Read more

“BingBang” flaw enabled altering of Bing search results, account takeover

Categories: News

Tags: bing

Tags: microsoft

Tags: azure

Tags: takeover

Tags: search

Tags: results

Tags: access

We take a look at the BingBang flaw which allowed for search engine manipulation in Bing.

(Read more…)

The post “BingBang” flaw enabled altering of Bing search results, account takeover appeared first on Malwarebytes Labs.

Read more

2022 in review: DDoS attack trends and insights

Credit to Author: Microsoft Security Threat Intelligence| Date: Tue, 21 Feb 2023 18:00:00 +0000

With DDoS attacks becoming more frequent, sophisticated, and inexpensive to launch, it’s important for organizations of all sizes to be proactive and stay protected. In this blog, we detail trends and insights into DDoS attacks we observed and mitigated throughout 2022.

The post 2022 in review: DDoS attack trends and insights appeared first on Microsoft Security Blog.

Read more